Commit Graph

545 Commits

Author SHA1 Message Date
Ming Di Leom d47131e6b7
post: Configure Splunk Universal Forwarder to ingest JSON files 2023-06-17 11:09:52 +00:00
Ming Di Leom 483c071f01
post: Malicious website detection on Splunk using malware-filter 2023-04-16 06:08:55 +00:00
Ming Di Leom bb1a561060
page(about): details on website architecture 2023-02-26 11:10:54 +00:00
Ming Di Leom 8af4676245
post(caddy-plugins): clarify Nix sandbox 2023-02-26 04:55:58 +00:00
Ming Di Leom 45942ebafb
page(about): update architecture diagram 2023-02-25 06:54:58 +00:00
Ming Di Leom 658261f619
post(caddy-plugins): xcaddy workaround in 22.11
- https://github.com/NixOS/nixpkgs/issues/89268#issuecomment-1435642986
2023-02-23 10:54:47 +00:00
Ming Di Leom 94da2a438e
post(ssh-cert): nixos should use AuthorizedPrincipalsFile 2023-02-21 07:00:41 +00:00
Ming Di Leom 7b19b136c7
post(ssh-cert): consistent example domain
and simpler title
2023-02-18 09:39:33 +00:00
Ming Di Leom 3775e75d90
post(ssh-cert): updated date 2023-02-16 09:03:46 +00:00
Ming Di Leom 72b5cdcc67
post(ssh-cert): matching email to different user 2023-02-16 09:03:15 +00:00
Ming Di Leom 26228eba94
post(ssh-cert): usage monitoring 2023-02-14 09:04:08 +00:00
Ming Di Leom 392170d9ca
post: SSH authentication using short-lived certificate through Cloudflare Tunnel 2023-02-13 10:50:06 +00:00
Ming Di Leom da79ea8455
fix(headers): Permissions-Policy syntax
- remove Feature-Policy
2023-02-11 23:58:59 +00:00
Ming Di Leom cd1a1e2cf7
page(about): add botnet-filter, splunk-malware-filter, splunk-scripts 2023-01-28 09:46:09 +00:00
Ming Di Leom 24d97a83df
page(about): remove bibliogram 2022-12-04 05:30:45 +00:00
Ming Di Leom edfa38439b
post(nixos): yescrypt in 22.11 2022-12-03 06:26:35 +00:00
Ming Di Leom 9225ec79aa
post(luks2): btrfs subvolume 2022-11-29 08:12:22 +00:00
Ming Di Leom 6994381412
post: Enable LUKS2 and Argon2 support for Grub in Manjaro/Arch 2022-11-27 08:01:29 +00:00
Ming Di Leom d5ce17173d
post(malware-blocking-benchmark): fix table syntax 2022-08-11 03:06:44 +00:00
Ming Di Leom 83d3a5ac99
post(gl-artifact): improve title 2022-08-11 02:57:04 +00:00
Ming Di Leom be4b27ead7
post(gl-artifact): fix template error
- https://hexo.io/docs/troubleshooting#Escape-Contents
2022-08-10 05:33:58 +00:00
Ming Di Leom 1b6a286c65
post(gl-artifact): artifacts created before 22/6/20 have no expiry 2022-08-09 10:32:37 +00:00
Ming Di Leom 15bf39ea58
post: Remove old GitLab CI job artifacts 2022-08-09 07:30:08 +00:00
Ming Di Leom 12ef7ec26b
docs: add mirror curbengh.github.io 2022-08-02 02:43:24 +00:00
Ming Di Leom 168d60c0ae
page(about): added more sources phishing-filter 2022-08-01 02:58:25 +00:00
Ming Di Leom e062b92204
post(tor): updated date 2022-08-01 02:55:48 +00:00
Ming Di Leom 79ce1254e9
post(tor): link to https guide 2022-08-01 02:51:14 +00:00
Ming Di Leom b3a0a78826
post(tor): snowflake 2022-07-31 11:40:04 +00:00
Ming Di Leom ae36b98fd9
post(caddy): remote_addr replaced with remote_ip + remote_port
- https://github.com/caddyserver/caddy/releases/tag/v2.5.0
2022-07-08 04:37:05 +00:00
Ming Di Leom 326c2bfe63
post(nixos): fallback should also malware-blocking 2022-07-07 03:12:31 +00:00
Ming Di Leom 0cb811a549
post(nixos): update stubby to 22.05 syntax
https://nixos.org/manual/nixos/stable/release-notes.html#sec-release-22.05
2022-07-06 07:03:24 +00:00
Ming Di Leom cd0cc953de
post(ecdsa-tor): cross-cert in pem bundle 2022-06-27 12:31:38 +00:00
Ming Di Leom 287cf36572
post(ecdsa-tor): root CA is missing from PEM bundle 2022-06-27 11:00:01 +00:00
Ming Di Leom 48ce083ea6
fix(nix-custom-mod): correct filename 2022-06-14 06:47:20 +00:00
Ming Di Leom 7c983d7f2d
page(about): filters migrated to gitlab.com/malware-filter/
- https://about.gitlab.com/blog/2021/11/11/public-project-minute-limits
- https://about.gitlab.com/blog/2022/02/04/ultimate-perks-for-open-source-projects
2022-05-21 03:22:30 +00:00
Ming Di Leom 10bd0dae27
post(precompressed): new option in caddy v2.4.0 2022-05-06 06:35:12 +00:00
Ming Di Leom d8c745dcf7
feat(theme): support for series hint
- https://developer.mozilla.org/en-US/docs/Web/HTML/Attributes/rel#attr-next
2022-04-05 06:46:58 +00:00
Ming Di Leom 80999674ac
page(about): vn-badsite-filter
https://gitlab.com/curben/vn-badsite-filter
2022-03-28 10:20:31 +00:00
Ming Di Leom a820161e62
post(eepsite): recommend inbound port 2022-03-08 10:38:56 +00:00
Ming Di Leom 194e655983
docs(projects): aws-scripts
- https://gitlab.com/curben/aws-scripts
2022-03-08 07:41:36 +00:00
Ming Di Leom 2a242bf627
docs(services): add Rimgo
- https://codeberg.org/video-prize-ranch/rimgo
2022-03-08 07:38:16 +00:00
Ming Di Leom 2f22f1dfdf
fix(assets): proxy to gitlab pages
- statically image-resizing is down
  * https://github.com/staticallyio/statically/issues/98
- may self-host https://github.com/staticallyio/image-resizing
  * requires CF Images subscription
2022-03-05 08:06:43 +00:00
Ming Di Leom 2008cd202d
post(eepsite): concise paragraph 2022-03-04 09:36:44 +00:00
Ming Di Leom 6f0b49755b
docs: parameters to build badges 2022-03-03 10:47:29 +00:00
Ming Di Leom 09479d24d3
page(about): add codeberg 2022-03-03 10:45:55 +00:00
Ming Di Leom a216d49f94
style: replace tab with space
-   no longer works due to html escape/sanitise
2022-03-03 10:21:07 +00:00
Ming Di Leom 834a75bba0
feat(css): add border to <kbd>
- inspired by https://github.com/alvaromontoro/almond.css
2022-03-01 08:46:10 +00:00
Ming Di Leom ab22ce905d
style: edit date 2022-02-12 03:56:44 +00:00
Ming Di Leom ab6dca6615
post(log4shell): cdk stack
- https://gitlab.com/curben/aws-scripts/-/tree/main/log4shell-stack
2022-02-12 03:56:20 +00:00
Ming Di Leom 9bbec7a51a
fix: codeblock tag plugin syntax 2022-01-08 21:43:03 +00:00
Ming Di Leom 83f4a6aad5
post(alpine-binaries): update to alpine:3.15 image 2022-01-08 05:27:30 +00:00
Ming Di Leom c75cec7f05
docs(projects): phishing-filter & pup-filter are now bundled with uBO 2022-01-07 10:30:23 +00:00
Ming Di Leom c45ed4566f
post: Installing Caddy plugins in NixOS 2021-12-27 05:33:45 +00:00
Ming Di Leom 2957b240f8
post(cloudflared-nixos): custom package 2021-12-27 04:26:34 +00:00
Ming Di Leom ce73b39d1e
post: Parsing NGINX log in Splunk 2021-12-25 07:26:09 +00:00
Ming Di Leom 52ec2e8c6f
docs: minor grammar 2021-12-22 07:44:18 +00:00
Ming Di Leom e8cf89b7d1
docs(tracking-filter): Blokada has more fp 2021-12-22 07:36:34 +00:00
Ming Di Leom 7cece91975
docs(services): add Scribe
- https://sr.ht/~edwardloveall/scribe/
2021-12-22 07:34:55 +00:00
Ming Di Leom f45a2e5ae1
page(services): Wikiless
- https://codeberg.org/orenom/wikiless
2021-12-19 08:25:46 +00:00
Ming Di Leom 13cb4353a2
post(log4shell): service unit needs to be unmasked
before starting it
2021-12-17 09:30:58 +00:00
Ming Di Leom 6921550557
post: Check Log4Shell vulnerability using Unbound DNS server 2021-12-17 09:28:37 +00:00
Ming Di Leom 580fddf251
docs(tracking-filter): recommend blokada
- https://community.blokada.org/t/introducing-duckduckgo-tracker-radar-to-blokada/469
2021-12-11 07:27:32 +00:00
Ming Di Leom aaeb88bcc2
page(about): updated date 2021-12-09 09:44:17 +00:00
Ming Di Leom 4cd625431a
page(about): add libreddit, simplytranslate & lingva 2021-12-09 06:41:48 +00:00
Ming Di Leom d78f5e4e2d
post(eepsite): clarify on deriving B32 from .dat 2021-12-09 06:31:34 +00:00
Ming Di Leom 8e37626802
fix(csp): allow web manifest
- this site does use it
  * https://gitlab.com/curben/blog/-/blob/master/source/site.webmanifest
2021-11-18 08:33:26 +00:00
Ming Di Leom ea92a6122c
post: cloud control 2021-10-08 10:20:24 +00:00
Ming Di Leom 7fade49ffa
post(microg): clarify microg installation options 2021-09-19 03:25:14 +00:00
Ming Di Leom f51f141e6a
post(microg): peril of OTA zip in A/B partition 2021-09-18 23:37:08 +00:00
Ming Di Leom a9dfb061d1
post(microg): microG installer using Magisk module 2021-09-18 02:56:26 +00:00
Ming Di Leom 68418203ea
post(aws-config): shorter title 2021-09-16 20:52:36 +00:00
Ming Di Leom c5594e4a3e
post(aws-waf): regional ACL
- style: standardise edit date
2021-09-01 09:19:38 +00:00
Ming Di Leom d5093b21f4
post(aws-waf): move usage guide to repo
- https://gitlab.com/curben/aws-scripts
2021-08-22 07:43:12 +00:00
Ming Di Leom 2a6f2ebd2a
feat(aws-config): support more rules
- consolidate into a script
2021-08-21 07:19:55 +00:00
Ming Di Leom 6545ab080e
post: aws config 2021-08-15 08:15:13 +00:00
Ming Di Leom b22baa1999
fix: move aws scripts to curben/aws-scripts repo 2021-08-15 08:06:18 +00:00
Ming Di Leom 671cafd086
fix(Caddyfile): http.reverse_proxy.upstream.host placeholder 2021-07-24 02:49:23 +00:00
Ming Di Leom bb1eed3b9e
post(caddy): remove more PII 2021-07-24 02:40:54 +00:00
Ming Di Leom 81df021f5d
post: Calculate Web ACL Capacity Unit (WCU) in AWS WAF 2021-07-23 08:00:02 +00:00
Ming Di Leom ff0dd91b8d
post(caddy): remove PII from error log
- "log" global option
- https://caddyserver.com/docs/caddyfile/options#log
- available in Caddy v2.4.0+
2021-07-16 09:16:10 +00:00
Ming Di Leom 588f65f6d4
fix: update duckduckgo v3 onion
https://teddit.net/r/duckduckgo/comments/oc07wj/news_duckduckgo_search_now_available_via_tor/
2021-07-07 11:32:52 +00:00
Ming Di Leom c59e036d12
post: remove harica file 2021-07-04 03:42:36 +00:00
Ming Di Leom 9b6993fc43
post: Get a ECDSA TLS certificate for your onion service 2021-07-04 03:39:22 +00:00
Ming Di Leom c3c8760977
post: Using custom package in a NixOS module 2021-07-02 22:51:58 +00:00
Ming Di Leom 713fe2d7be
page(about): update date 2021-06-27 11:06:36 +00:00
Ming Di Leom b8ffc84e46
page(about): title typo 2021-06-27 11:03:51 +00:00
Ming Di Leom 9b51c2ae21
page(about): no longer active in Hexo 2021-06-27 10:52:23 +00:00
Ming Di Leom 44342a0ee4
page(about): cloudflared 2021-06-27 10:51:38 +00:00
Ming Di Leom a61e612415
style: spacing 2021-06-27 07:56:44 +00:00
Ming Di Leom 54c63d1b7b
post: Convert AWS WAF ACLs to human-readable format 2021-06-27 07:53:55 +00:00
Ming Di Leom 4bc257c7e7
post(nixos): cloudflared replaced port forwarding & open inbound port 2021-06-20 07:02:48 +00:00
Ming Di Leom d72587094b
page(about): add tracking-filter 2021-06-20 06:53:03 +00:00
Ming Di Leom e7f1e1b2ff
post(free-apps): add Organic Maps, Catima, PDF Viewer
- remove defunct Yelp Store, Maps
2021-06-19 07:17:18 +00:00
Ming Di Leom 319ee042cd
post(microg): add Aurora Droid/Store, Organic Maps, Catima
- remove defunct Yelp Store, Maps
2021-06-19 07:06:02 +00:00
Ming Di Leom fff583c2b4
post(cloudflared): custom config location 2021-06-16 11:19:45 +00:00
Ming Di Leom 7c0d28e988
post(nixos): user must be assigned to a group
- otherwise the home folder will be created/assigned with "nogroup" group
2021-06-15 10:49:03 +00:00
Ming Di Leom 1e1223de2d
post: cf argo on nixos 2021-06-15 10:40:15 +00:00
Ming Di Leom 2bbe0cc629
post: nixos 21.05 upgrade note 2021-06-13 09:42:48 +00:00
Ming Di Leom 1d1bd91266
post(nixos): enable isSystemUser to disable shell 2021-06-13 09:22:57 +00:00
Ming Di Leom 365f937665
post(rsync-nixos): disable createHome to prevent reverting to chmod 700
- retain world-readable/chmod 755
2021-06-13 00:00:57 +00:00